This Page Is Inserted by IFW Operations 
and is not a part of the Official Record 

BEST AVAILABLE IMAGES 

Defective images within this document are accurate representations of 
the original documents submitted by the appHcant. 

Defects in the images may include (but are not limited to): 

• BLACK BORDERS 

• TEXT CUT OFF AT TOP, BOTTOM OR SIDES 

• FADED TEXT 

• ILLEGIBLE TEXT 

• SKEWED/SLANTED IMAGES 

• COLORED PHOTOS 

• BLACK OR VERY BLACK AND WHITE DARK PHOTOS 

• GRAY SCALE DOCUMENTS 

IMAGES ARE BEST AVAILABLE COPY. 

As rescanning documents will not correct images, 
Please do not report the images to the 
Image Problem Mailbox. 



PATENT 
P55690 




i 
ki 



12r3 



13 



14 



TITLE 

COPY PROTECTION SYSTEM 
pR PORTABLE STORAGE MEDIA 
CLAIM FOR PRIORITY 

This application makes Wence to, incorporates the same herein, and claims all rights 
accnmg thereto under 35 U.S.C. §Vhrough our patent appHcations entitled r/..^^^^^^^^ 
Encryption Apparatus And Method r4^/earlier filed on the 24^ day of September 1998 in the 
Korean Industrial Property Office and ther\ulyassignedSerialNos. 1998/39808 and 1998/39809. 

FIELD OF THEONVENTION 

The present invention is generally related to \^tion processes and apparatus, and, more 
particularly, to secure and robust processes and apparat\for the generation and use of keys in the 
transmission and replay of digital information for Mcerl SDMI compliant modules such as 
personal computers and SDMI compliant portable devices \conjunction with Internet service 
content provider and certificate authority. 
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BACKGROUND ART 

Recently, with the floodofinformationprovided by various media sii^h as broadcasting and 
press, an atmospherehas been created by the information providers who are mterested in provi^^ 
integrated infox^ationthat covers aUofthemedia. Other users wanttoselectiveV^^^ 
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itehi of digital information from the entire spectrum of information available from a particular 
infondi^ion provider (IP). Accordingly, a digital content transmission system has been formed by 
the inforrri^tion providers who convert various types of information into digital form and store this 
digital inform\don, and the users who subscribe to this digital information system from the 



infonnation proviV via the network. Digital information transmission systems endow an 
appUcation program Wi^ easy downloadabiUty of the digital content. The user can get all the 
information desired by us^ this appUcation program to access the digital infonnation system 
through the network. 

The digital infonnation mayV provided to the user either for pay or for free. In case of paid 
digital infonnation, the server who provi<k the digital infonnation via the transmission system sets 
the service fee. The service server charges V user according to the quantity of infonnation used 
when the digital infonnation is dovimloaded toVe user. MPEG software protocol for example, 
compresses audio files to a fraction of their originaKsize, but has Uttle perceptible affect upon the 
quahty of the audio sound. MPEG software protocol isW)w widely used by Internet sites offering 
digitalized music, and is reported to be commonly used toSofifer digitahzed versions of recorded 
music without the consent of the musicians. When a user is dsmnected to a server that provides 
digital infonnation commercially via a network, a few of the usersVay be able to inadvertently or 
illegally copy the digital infonnation, a practice that, as was recently n^ed by Interdeposit and the 
French Agency for the Protection of Programs, a member of the Europeak Association of Authors 
and Infonnation Technology Professional, in the Patent, Trademark & Copyh^ht Journal, volume 
57, No. 1416, page 385 (1 1 March 1999), would be economicaUy damaging to\th the musicians 



PATENT 
P55690 



1 and tdythe server who is running the digital information transmission system. Currently, the server, 

2 as weU aWe musicians, can do Httle more than seek redress by undertaking civil and criminal action 

3 ^ in an effort tds^ontrol the possibility ofunlicensed reception of digital information. We have noticed 
\J^J^hat there is a ne^or a technique to preserve transmission security of revenue bearing information 

While restricting access to the information by unauthorized entities and preventing unauthorized 

6 users from using any of\e information that they may be able to ilhcitly obtain from the information 

7 provider by restricting the aMty of the unauthorized users to decrypting whatever information they 
8^ manage to obtain via the systeim 
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SUMMARY OF THE INVENTION 

It is therefore, one object of the preset invention to provide improvements in cryptographic 
processes and apparatus. 

It is another object to provide a secure and Wst digital encryption process and apparatus. 

It is yet another object to provide digital encrj^ion processes and apparatus endowing a 
system with secure and robust copy protection for LCM'sVe, Ucensed SDMI (i.e., secure digital 
music initiative) compUant modules such as personal compute^ and PD's (i.e., SDMI compUant 
portable devices such as disk and DVD players) in conjunction^ith ISP (i.e., Internet 
provider) and CA (/.e, certificate authority). 

It is still another object to provide digital encryption processes and\pparatus able to encrypt 
and transmit digital information received from a transmission system, b\the use of multiple 
cryptographic keys. 
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is stm yet another object to provide digital encryption processes and apparatus for 
generatingVd using multiple cryptographic keys during the transmission of digital information to 



a user. 



It is a furtW object to provide digital encryption processes and apparatus that employ mer 
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(}^.^infot™ation in the g^tion and use of multiple ct^tographic keys during the transmission of 
digital information to the user. 

7 It is a yet further objecV provide digital encryption processes and apparatus able to enci^pt 

8^ and transmit digital informatioVobtained from a transmission system by using multiple 
cryptographic keys, and to decrypt ^play the digital information at the terminal of the user by 
using a plurahty of keys, one of which is Vmnon to the multiple keys. 

It is a still further object to provide digV encryptionprocesses and apparatus able to encrypt 
and transmit digital information obtained from aWmission system by using key information, a 
user's key, and a temporary validation key, and to d^ypt and play the digital information at the 
terminal of the user by using the key information and userVthorization information. 

It is still yet a further object to provide encryption, ^smission and reception protocols 
enabling encryption, transmission and decryption of digital inform\on received from a transmission 
system. 

It is an additional object to provide encryption, transmission and re^ption protocols enabling 
encryption and transmission of digital information received from a transmLon system by using 
multiple keys to encrypt the digital information, and decryption and replay of theWital information 
at the terminal of the user by using a plurality of keys, one of which is common to t^multiple keys. 



Hi 



12;: 



13 = 



14 



15 



16 



17 



18 



19 



20 



21 




PATENT 
■ ' P55690 

It is a still yet fiirther object to provide encryption, transmission and reception protocols 
enabli^encryption and transmission of digital information received from a transmission system, 
by using Id^ information, a user's key, and a temporary validation key, and decryption and replay 
of the digitaJWormation at the terminal of the user by using the key information and user 



'^jA^ authorization info^jiation. 
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It is also an direct to provide a more secure cryptograph and process for transmitting 
information to a terminal user who has requested the information. 

It is also a further obiect\o provide a cryptograph and process that rehably restricts the ability 
of a registered subscriber who hasWdly obtained information from an information provider, to 
deliver that information to another entiKin a readily usable form. 

These and other objects may be aVned with an encryption process and apparatus that 
provides a secure and robust copy protection system for a Ucensed secure digital music initiative 
comphant modules such as personal computers and^ortable devices, in conjunction with Internet 
service providers and certificate authorities, by respondiie to a user's request for transmission of 
items of digital information to the user's terminal unit, by^providing copy protection during 
downloading and during uploading of the digital contents. In ord^ to prevent the digital contents 
from being copied illegally, a pluraHty of keys are generated and held ^oth the user and the digital 
content provider, and a secret channel is formed between both the usdv and the digital content 
provider. The header of the encrypted digital content is encrypted by using aSohysical address of a 
sector of a Ucensed SDMI compUant module such as a portable computer or a po\ble media device 
in order to prevent the digital content from being copied illegaUy after the digital cont^t is recorded 



-5- 



PATENT 
P55690 



1 in the porta)^^ media. 
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^ \. BRIEF DESCRIPTION OF THE DRAWINGS 

3 A more co^ete appreciation of this invention, and many of the attendant advantages 

thereof, will be readily Went as the sm^ 

5 detailed description when\midered in conjunction with the accompanying drawings in which like 

6 reference symbols indicate theWe or similar components, wherein: 

Fig. 1 is a block diagramWrating the overaU architecture of an implementation of the 
80 principles of the present invention; \ 

Fig. 2 is a block diagram iUustratW a registration by an original equipment manufacture of 
a portable device with a certificate authorityi 

Fig. 3 is a block diagram showing the relation of a Internet service provider's registration 
with a certificate authority; \ 

Fig. 4 is a block diagram showing the registWion of a personal computer and a portable 
device with an Internet service provider; \ 

Fig. 5 is a block diagram showing usage rules gov^g a database of a right management 
system; \ 

Fig. 6 is an exempUjfied format; \ 
Fig. 7 is a block diagram showing the basic architecture forWious inputs; 
Fig. 8 is a block diagram showing control of outsource import\nd 
Fig. 9 is a block diagram showing a copy protection system for poHable media. 
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1. »(T»ODUCTION 



In this ma^^cript we describe, as Samsung's proposal for the SDMI standardization, the specific roles and 
pSSib^D)' ^^'""'"^ Compliant l^odule, e.g. persoDaJ PC) and SDMJ CompUant 

fifilil" f °?i.^'^xi''S' ""'wtal architecture for a secure EJectronic Music Distribution (EMD) as a 
Candida e for tht fs^ CompUant ENID. In section 3, for the removal of the ambiguities on some 

^oT™?' ""V" "P'f ''^"'^ °^ '"^ P^"'"'^'^'' ^""^^ "^"ologies are defined^ For o^e 

cor.TZt^' ' ^ P'"''' wi*iD LCM or PD fer their secure instailarioa and secure 

SJ. PT'^ 't'^f" ^ """^ Wtiali^ation protocol of LCM ^nd PD is described b 

section 5 From section 6 to sc^n 8, the secure content transaction pr6tocol over ISP-LCM-PD-PM are 
descnbed via the appropriate file>rmat appeared in section 7 and/^some functional roles facilitated 
by those m section 6. Furthermore, fiur proposed SDMI compliBn/proc|ses for the considerable various 
outsource mputs to LCM or PD is preserKedia section 9. ^ - le various 

2. OUR OVEiLALL ARCHITECTUReV 

In our overall »chitecture depicted in the followik the ISP (Internet Service(Content) Provider) and PD- 
SSmt^'I™"^- CACCertificate Auth^. e.g. SDMI) to achieve their right certiicate for 

SDMI CompUant Role or Product. When an ISP resistei% CA. Ca issues a certificate to the ISP's PubUc 
Key and stores ,t into its Data Base and hereafter helps a to makes use of this data to authenticate the 
ISP when It needs to register to the ISP. And when a PD-MVufacturer registers to CA. CA also Issues a 
manufacturer key and its certificate for the mahufecturer and sft)^es it into its Data Base and hereafter by 
use of this, stipulates a secure PD-Registration to a LCM by chec^g its certificate validation in the LCM 
and by constructing a secure channel between them. Note that any l^s do not have any knowledge about 
ine manufacturers' keys. \ j a 

Whne sotne content transfer between LCM and PD occurs, the right mih^ement system may act on the 
heado- part of its file format, where, of course, each communicaUon or cb«nteflt transaction ainong the 
members appeared m the Fig.2-1 should be done only after their autheniicatikand constructing a secure 
channel. As for the nght management of contents, our proposal contains CopyrigHtsStatus, Playback Status 
luid TrMsfer Status. In our proposal, the trnnsterabiliiy of a content as discriminate?&oni the portability of 
It. The Kiosk-ljke machine is to be treated as a LCM. but is to be subject to the groups d^opyrigbt holders 
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Figure S-1 : The Overall Architecture 



SOME TERMUVOLOGIES 



.kK^ . ^^""^ ambiguities, in this section, we define some terminologies and Jist up some 

abb^v^ted word, for a simple description (most df them are those commonly used in PDWG) ^ 
First, welH^^o disTinguish the two words, ^Tortability" and "Transferability" of a content, 

• Portabilitys^ content in a PM can be played in any PD 

• Transferabilltj^^ortability f ^^pload of a content is allowed from a PM to even a LCM" m this 

contem;s>loadabi|ity is to be controlled by chack^in^out system and its iransferabiiity 

Hereafter we use the following abbreviaife^words. 

• C A - Certificate Authority (e.g. SDM/Vqtocr trust tliird party) 

• LCM - Licensed SDMJ Compliant Module^ 

• PD - SDMI Compliant Portable Device 

• PDFM - Portable DevtCti Functional Module 
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' * {.M p'"!^.' x!rj" (including Content Provider via the Intemct) 

FM -i-ortahle Media (SDMI CompJiant Storage Media) ^ 

s'o^fetc' wete'^^^^ ^"-i„g sections. Even though they are 

lntend.Xyarerc,evanrrthr.,g;^t^^^^ ""'^--"^ concrete TethoJ we 

• ^^V" Curve Ciyptosystera 

TXeit'''* ■ ""'^ """^ "^"^ ''^^ ""^ ^C^- (oP^onal). ISP, CA. 

I MK ""X^J"^ - A Certificate for a l»ublic Key PubKey, issued by CA. 
^'^I'o - T^e Manufecturer Key within a PD 

• U>iMK - ThdJnd icator of a Manufiicturcr Key 

• i^matcTA * p^* (secrete) chatmeJ key which is setup between PD and LCM 

£Cr /«,„l»rA • public key encryption process. And Samsung con svoport its awn 

^^^S^ke^K of a ciphertext (encryptSl te^t) C by utiUzing 

• offfifSlnfnLy^^^^^ ^''-^ ^ « ^^"Ptic Cun,e based 

• ENClkey , C) - Symme^c Key Encryption of a content C by utUizine a aecieie Icev ? 

• ^Zc lL^Z^"''"^^ "nd it has been worJd-wid^ ctyplanalUed, ^ 
DECikey , C) - Symmetric iky Decryption of a ciphertext C by utilixing a serr^r^ i..y ^ 

4. BASIC REQUIBEMENTS FOR THU S^CUM SETUP OF LCM AND PD 

LCM an7?D "u L^LTi^^S^.^.H'"^'" (algorithA^) that are needed for the insurance of the security of 
6^tln!m.^^^^^^^ "^'-'^^ decoxnp.ssing CODECs are buiit in eac'h 

4.1. For the LCM 

• P"J|;.«^^eyCrypto3ysteni(PKC)-ECC,RSA. ... i£CC is more preferabie) 

Coific,T. ^ T ^^'^"""^^ ^^P of LCM^e validity check of ISP's Public Key 
Certificate, and the secure channel construction betweeiAiSP and LCM 

• Symmetric Key Encryption Algorithm - SNAKE .. \ 

4.2, For the 

• Public Kty Cryptosystem (PKC) - OptJonai to PD. 

• Symmetric Key Encryption Algorithni - SNAKE . \ 

ctnllSc'on b^^t:et'^Dt dTS "^'^'^'"^'"^ " ' \ ^^"^ ^« 

• Manufacturer Key, mk,b - the pre-set manufacturer key in a temper resi\n.t area within the PD. 
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This is to be used for the secure registration of a PD 10 tCM. 
4.3. \ForthePM 

Th^e nh^ an apparatus or a pre-set special uiformatioxi withiii a PM to protect contentii in ir fr^m rK. 

ml\^LrT\ T^ J "Wt^Hg^l^ftfPnrh EM in the writo-protected area of it while they 

manufacture ^his can be considered as a low cost method to dead-copy protection for the 1" genera^ 



S. INlTIALIzVnON (KEY SETUP) MECHaNJSM 



S, 1.. Registration of ¥D manufacturers to CA 

Prior lo manufacru^ng PD.W manufacturers should register to CA to get thjeir manufacturer key MIC.„ 
and Its ceiUficate, Certc.(roV) . and then produce the SDMI Compliant Portable Devices by usi^g them! 
ilr^ T '"^"^V'rer keys are securely stored in CA's DB and only CA maintains the 

information The manufecturer Should keep their manufacturer-icey and its certificate in safe maintain ii 
securely and imbed them m a tenVoer resistant area of PDs while he manufactures PDs. In the Flg.S M an 
illustrated example js depicted. ^ e •* i aii 



CA 



After Certiricatlon 



register 



DB 



Manufacturer Key Info. "Able (MKIT) 



Manufacturer 








f 











Figure 5.1-1: PD-Manufacturek^s Registration to CA 

In this figure, when a maoLifecturer request its registratioiiSp CA, CA certifies it and then generates a 
manufacturer key, MK,t, , and raake its certificate data, Cert^^flD^, to deliver them to the manufacturer 
At the same time CA generates a random token, T, to make (or iiodate) the Mnaufecturer Key Information 
Table (MKJT) for the other ISP-registration. Once after a Vianutkcturer got the data. {MKpo 
Certf:A(lD^}, he/she can manufactures PDs by imbedding those se\ete data within a temper resistant area 
of PDs. ^ 

5.2. Kegtst ration oflSP to CA 

The following Fig.5.2-1 shows how for an iSP to register to CA and what iriformation to get from C A For 
an ISP to register to CA, firstly it generates its ephemeral private-public key )air fPrvKey ^ . PubKey .} 
10 open a secure channel between CA and itself by EC_DH(CA, ISP). Secondly the ISP gets its semi- 
permanent private-public key pair {PrvKey,,, . FubKey,s, , Certc^(PubKey,,p)ySand MKTT data appeared 
in Fig.5.]-1 through the secure channel. Where CA's certification to the ISP should be preceded ahead all 
these procedures. ^ 
Afote : fSF 's Key Pair should be securely stored. 
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EC_DH(CA, JSP)-K 



ISP 




ISP 




Figurc\S.2-] : ISP Registration to CA 



/>fo/0 : The LCM's Key Pair should he secu))^y stated, where the hpst 's various system parameters mas> he 
used for this gcai ^ 

5,3, Registrations of LCM to ISP and of PlJ^o LCM 

Here the LCM registration mechanism to an ISpVgether with PD registratioa is described. As in the 
Fig.5 J-1 LCM gets the [SP^s Pubhc Key lnfonnatjo\ {PubKey.^p , CertcA(PubKey,fip)} at first and verifies 
Its validity by using die OA's Public Key TnforraatioiK which was already announced or preset witliin the 
LCM in a code-imbedded- like method. 



(1) 



(2) 



LCM 



►[■.SStartiigl; .] 



(5) 




Figure S.3-1 : LCM and/or PJD Registration 
to ISP 
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if the vaJidYof the certificate for the rSP's Public Key is certified, the LCM e«cute$ the handshaking 
protocol to ^ a ephemera! shared key by utilizing EUiptjc Curve based (or other PKC based) Key 
Exchanging Pfi^ocol. Through this secure chajine) the ISP can deliver in safe the LCM^s pem^anent 
private.pubhc pair for a static secure communication and a secure content transaction between ifae 
LCM and the TSA For a PD to register to the LCM, it has to toss the certificate data for its ID of 
manufacturer key LCM gets this data from the PD to send this to its connected ISP in the encrypted 

form. EC_ENC(Publ(;ey,sp , Certt^(XDMK)). 

Using this, the iSP canWifies thts manufacturer key information and can extract its relevant data T'lIT by 
looking up MKIP in rSP>s DB to transfer it to the LCM in secure manner, i.e. by EC ENC(PubKeyL-M 
T II n. For the LCM andX^e PD to setup a shared secrete key and to complete the PD registration die' 
LCM randomly generates th\Mr static and secret channel key CKp^.^^ and sends ENC( T, CK.n.i^„ )[| T* 
Upon receivuig this data, theXPD can extract the token value T from T* and using this token Xho PD can 
also compute CKt^u'M, As theXPD securely stores this channel key the PD-registration is finished. 



JVotel : The Channel Key CKp^^ 
receives the data T* from the LCf 
then the PD generates a random char 



may be originated fronci PD instead of LCM. In this case the PD 
nd gets the token T by decrypting T* with its manufacturer key. And 
'cl key CK^o^cM to upload ENC(T, CK^oa-c^) to LCM. 



/>/aie2 : The part of the record in MKIT I 
(this key may be LCM*s PubUc Key). 



I LCM) Slays in encrypted form by using the LCM's secrete key 



Note3 : In practice, during the PD registratioJ^ LCM, the RMS-DB updating token data (UTD, appeared 

m section 6.1) should be transferred from the FD to LCM(or from the LCM to PD) together with CKp, 

and be set both in the KJwlS-DB and in the PD. 

5.4. Registration of Multiply? LCMs or M uitipl^Ds 

Our architecture and the file format can allow users to kgister their own limited number of LCMs or PDs. 

The number may be limited by ISP or by CA. \ 

Rggiatraaon of Multiple LCMs -> since ISP maintains the private-public key pair of the firstly 
registered LCM of an user's multiple LCMs. ISP >an securely deliver the same key pair to the 
another LCM of the user' s . \ 

Registration of Multipig PDs ^ since LCM securely xrtaintains the secret channel key between the 
LCM and PD, the LCM can securely deliver the same ke\pair to the another PD of the user's in the 
same manner depicted in Fig. 5.3- 1 , 



6. COMPONENTS WITHJN LCM AND PD 

6.1. Functional Components in LCM 

• Right Management System 

^ To manage the information CTC={Copyright, Transfer, Check^Check-out} , LCM has to 
maintain the Right Management System DB, named RMS-DB in a secure manner. Here we propose 
our secure Right Management System. In this system we focus on the cflmtent transacdon between 
LCM and PD. 

The RMS-DB consists of the Title (or Title-ID), CTC field. Playback C^trol Status (PCS : the 
permitted times to play, the amnesty period, ...) and Update Token Data (UTD). This DB stays in 
LCM in the encrypted form by utilizing LCM's secrete key. An Importan^haracieristic of the 
Update Token Data (UTD) is that it is generated from PD whenever any conftnt downloading or 
uploading session between PD and LCM occurs and that it is also stored in the PI 
Whenever a content is played back at first in LCM, the above right management iVforraation of the 
content's file format is newly registered to the RMS-DB. Once a content is registe>ed to the RMS- 
DB, every playback procedure should priory reference to the DB to check the cooteVt^s validation. 
The following Fig.6.1-1 shows exemplified implementation for the management rul\of RMS-DB 
when a content downloading occurs. 
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A^oA^ : The part of the record in RMS-DB (in LCM) stays in encrypted form by using the LCM's 
i key (ihis key may be CKpi>.tcM)- 



secrec 



Notel : W UTD part may have a few number of Updaiing Token Data depeoding on the nijmber 
of a useT*s\wn PDs. 



I 



I — check 



upd ate 



UTD{i} 



CTC 



PCS 



RMS-DB 




Figure 6.I-] : Usage Rule of REVfS-DB 



Note : The RMS-DB may mainlam a finiteSmmber pfUTDs depending on the limited number of 
users ' own PDs which were already registered to the LCM^ 

• PDImpori Control 

This layer exists in LCM to import SDMI Comp^ant contents from ISPs or to impart non-SDMI 
Compliant outsource contents (»e.g. RedBook CX>^ DVD, ... )• And so this should contain such 
capabilities as the followings. 

• Trans-Coding ^ to make PD decompress the ^put with its CODEC 

• Trans-Encrypting -> to make PD decrypt the input with its Encryption System 
Converting the input lo SDMI Compliant file tbnt^at 

• PD Interface 

This has the following capabilities, 

• Authenticating to PD 

• Opening a secure channel between LCM and PD 

• ISF Interface 

This has the following capabilities. 
Authenticating to PD 

• Openbig a secure channel between LCM and PD 

6.2. functional Components in PDFM 

• LCM Interface 

This has the following capabilities, 
Authentjcntlng to LCM 

• Opening a secure channel between PD and LCM 



Import Control within PDFM 
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J i^has the capability to import a outsource analog input and to make It fit to the SDMI Compliant 
fiJe>foriTiat. Where the converted SDMI Compliant content should have the binding information to 
the Pb to be pjayed only via the PD. 

7. SDMI CoVpLlANT FILE FORMAT 

The SDMI-Complidnt file format should contain the following infonnation and should allow cxtendibility 
and flexibility. \ 

Indication of sWce Originator ISP, LCM (CD-ripping, Audio input), PD (Analog input), 
Kiosk,... \ 

Device IDentifierV LCM_ID. PD„ID, PM^ID 
Algorithm Informatton Field 

^ Authentication sVret sharing algorithm identifier EC(Elliptic Curvc)-Signature, EC-DH. 

^ Encryption algorith^ Identifier SNAKE. ... 
^ Codec algorithni ideiMfier MP3, AAC, ... 
^ Encryption key information of content 

• R-ight Management Fitild \ 

Right management field contaifys the Copy, Check-Jn/Out, Transfer and Playback Control Status^ 
which are to be encrypted by sec^t key of the device. 
^ Copy-Never/Copy-Free/No-more-Copy mode 
^ Check-In/Oui mode \ 

Transfer mode (Transferable or\ot) 
^ Playback Control information \ 

Allowable number of limes t\ be played (unlimited or n-times) 

Expiration date 

Amnesty period 

• Copyright holder information \ 

• Content description field Title, ComposerMrtist, Record-label, ... 
Here is illustrated an exemplified file format 



-ec_ENC(PubKe9vcM , this block) 



Title-TD 



CDF 



AIF I Device-TD 



SOI 



CHI 



.RMF 



CEK =k 



ENC(k, Content) 



Algorithm Id^mlfVlntf Fteld : BCC, SNAKB^'^dPEC 



Right NlSFiw^H^t'BpJ^i. i'Vj.,.- Ti 

Copy Conft:^ CheckMlTv/CBcc^out Stated [ 



We divide the above file format into the following three parts and we call thera as in th\ following, 
Plain-Header (PH) - {Title-ID, CDF, ATF} 

• Secret Header (SH) - {Device-ID, SOI, CHI, RMF, Content Encryption Key} 

• File Body (FB) - {The Encrypted Content by using the content encryption key in to} 
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8\ SECURE CONTENTS TRANSACTION RULE OVER ISP-LCM-PD-fM 
8.1A Contenu Transaction from ISP to LCM 

When aMSP receives a content downloading request from a LCM. it confirms the LCM's ID and then 
downloads the content with the fiJe format of section 7 to the LCM. For the LCM to play tlio reached 
content, it follows the below steps in this order: 

Findiflg^ut the encryption algorithm from the field AIF in PR 

- Using thYbund out encryption algorithm and LCM*s secrete key (private key) to recovisr the fields 
in SH \ 

ComparmgNhe Device-JD field with its ID 

- From the RMF information confirming the Copy Control Status, Playback Control Status, and 
Transfer Control Status to register it to its RMS-DB 

Recovering theV)ntetii encryption key from CEK to recover the rpai content from FB 
If any of the above lists does not violate, paying the music. 

If it is needed to modify th^sRMF field, especially the Playback Control Starus (PCS), LCM has to replace 
the data both in the file and iXthe RMS-DB following the coniroULng direction. 

8.2, Contents Transaction mm LCM to PD 

The procedure for a LCM to download a content to its PD follows ibe bcJow steps: 

LCM requests Uie PD-ID and UTsD data to the PD. 

- PD sends the ENC(CKpp.i^ .UTDl 1| PD-JD) to the LCM. 
LCM recovers the PD-TD and connWns it. 

LCM recovers the UTD and SH pan opnipares them with those in its RMS-DB. 
If IJTD is correct and if any alteration RMF is needed, the LCM updates the contents of RMF 
both in RMS-DB and In the file format. 

- LCM updates UTD of RMS-DB by newl>\generated UTD* and ENC(CKpjj.lcm ,UTD*) is to be sent 
to the PD. 

If the Transfer Control Status indicates as "Transfer*', then replace it by "Transferred" to the 
Transfer Control Status field in RMS-DB not i\ the file format. Where the Transfer Control Status 
field has the three types, "Transfer". Transferred^ and "Traosfer-non", 

If the Copy Control Starus (CCS) indicates 'Checkrin", then replace it by "Check-out" to the Copy 
Control Status field both in RMS-DB and in the fiieSformat. 

If the Copy Control SUnis (CCS) indicates "Copy-Ne^er". the content downloading to a PD is 
deuied. 

If any of the above lists does not violate, download the c\ntenl to the PD, 

8.3, Contents Transuction from PD to PM 

* For thg case that a unique ID of each PM exists : 

For a PD to write a content on a PM, it just writes the content on tfte PM and ii recovers the Secret 
Header (SFD and re-encrypts it by using the unique ID of the PM as\n encryption key. 

For the case that a unique ID of each PM does nnt exist ; 

For a PD to write a content on a PM, it just writes the content on the l^M and it recovers the Secret 
Header (SH) and re-encrypts it by using a randomly generated key. Wher^he randomly generated key, 
say T, is encrypted by a common secrete key, S (this is a preset value by ttt^ manufacturer of the PD), 
and is also written on a hidden area of the PM, 

8.4, Portability of PM 
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For th\first case of the section 8.3. aU contents within the PM can be played by ail PDs, but, for the second 
case, ailycontents within the PM can be played only by the PDs produced by the manufacturers which 
adopted tf^s system. Any way it is certain that this system can supports the portabiiity of contents via PMs. 

S.S, Trtindrerability of a Content 

As previously v^defmed in section 3» the "Transferability" is a different concept from the "Portability" of 
a content. The mdSm difference is that the content with ''Transferability^' can be not only played in any PD$ 
but also uploaded t>i any LCMs, but not in the case of ^TortabiJity". Since our system has and manages the 
Transfer Control Stkus field both in the RMS-DB and in the file format, our system can support the 
transferability of a co\tent. If there is marked "Transfer*' in the field of a content and if the contem is just 
downloaded to PD, iheAthe LCM downloads it to the PD and replaces "Transfer^* by "Transferred" in the 
relevant field of RMS-DBL Then the content, which has been downloaded to a PD, can no longer be played 
in the LCM until it is upld&ded to the LCM again, but the downloaded content in a PM can be played by 
any PDs and can be uploadeid to aoother LCM via a PD. 

Note : If the Copy Control Stilus (CCS) of a conient cohiained in a PM indicates "Copy~Free'\ the 
content can he uploaded to any bCMs, 

9. OUTSOURCE INPUT 

As shown in the Fig.9.1, various ioputa^uch as originated from RedBook CD, Audio CD, Super Audio CD. 
DVD Disk, and analog Device are afk allowable to LCM optionally. An analog input to PD is also 
allowable-. The secure import conn-ol foXthose several inputs to LCM or to PD is presented b the next 
subsections. ^ 




RedBook CD. Audio CD 
DVD Audio, ... 





:m 



Kiosk 



PD 



SM 



SM 



Figure 9-1 : Outsiource Input to LCM a\ci FD 



9. 1. Basic Architecture for a Secure Import Control 

As shown ID the Fig.9.M, the host device, in which the LCM module existAhas at least the following 
three layers (two of these exist in the LCM module). 



Samsung Electronics Co., Ltd. 




PATENT 
P55690 




FDFM 

PD Functional Module 



Figure 9,1-1 : Outi^urce Import Control 



• Autbcitticiited Input API ^ 

This API has the roles that coafirms the vaJidity of the in\t and extracts some required informatipTi 
to cpnvert the inpyt into a SDIVfl Compliant format. ^ 

Validity Check 

If the input data has a watermark, then this API should V ubU to detect it. 
- If the input data takes an cnciyptcd (or scrambled) fom\then this API should be able lo 

extract its encryption key and the encryption (or scrambling algorithm. 
" If the input data does not take any protected form, then\the API should confirm the 

validity of written format of the media containing the input i 

Required data for the API to pass over to the Import Control Layer, 
information of the media (source) type ^ Audio CD, DVD Audio\ 
Information of the originator of the input content 
Information of the content ^ Title, if any, Player, Artist. . . . 
Infbrmaiion of the encryption algorithm If any 
Information of the encryption key if any 

• PD Import Control 

This Import Control Layer gets a bundle of information from the Authenticated l\)ul API and 
reconstructs the input content to meet a SDMI Compliant file format by following thArules listed 
below: 
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\ Copy Control Status -> mark "Copy-Never'* or "Check-in/Check-oiif * (optionally) 

• \ Playback Control Status ^ m^rk "Times to playback = iofinite or N" (N: optional) 

• Vfrajisfer Control Status mark *Trau9f6r-Non" 

• Vark the "LCM-ID" into the SOI field and Device-fD field of SH(Secret Header) 

• li\he input content is not encrypted^, then generate a random key and encrypt it by the key. 

• If tne input content takes an encrypted form by other encryption ajgorithm different from the 
PD'sXthen thi3 iayer trans-encrypts the content to be played in the PD. 
Public^ey-Encrypt such made secret header part by LCM*s public key. 

• PD Interface \ 

This layer authenticates the connected PD by checking whether the PD has its correct ID and the 
secret channel key, CWC,.p^cM • Where die Kerberos Authentication Protocol may be used (refer to : 
A.J. Menezes, P.C, ubrschot, and S.A. Vanstone, Handbook of Applied Cryptograp^ry, pp.401-403, 
CKC Press. 1996). \ 

9.2, Analog Input to PD \ 

The Import Control Layer (ICL) wNhin the PDFM makes a SDMI Compliant compressed digital content 
from the analog input by following theu'uLes listed below: 

• Upon reception of each frame o^he analog input> the ICL do^s encoding the frame and does 
encrypting it by a randomly generatccMtey, If all the frames has been encrypted follow the next steps. 
Copy Control Status mark ''Copy-NWef ' or "Check-in/Check-out" (optionally) 

• Playback Control Status mark "TimeW playback - infinite or N" (N: optional) 
Transfer Control Status mark "Transfef^on" 

Mark the 'TD-TD'* into thti SOI field and o\vice-ID field of SH(Secret Header) 

• Encrypt such made secret header part by PD'Vchannel key. 

Note : ifsuch converted SDMI Compliant contenrjrom the analog input has its SOI field of SH (Secret 
Header) with marked ^PO-ID*, then the procedure ojS^iting the content on a PM does not use the unique 
ID of the FM, This means that such content as maaefrom an anaiog input to a PD is not allowed to 
h&ve the ^'Portability". \ 

9.3. Kiosk \ 

An example for the *'Kiosk" may be a shop or a machine that iti^kes a bundle of SDMI Compliant contents 
into PMs from CD-Ripping> etc. and sells them. Here we regard sUch Kiosk-Hke machine as a special LCM 
with PM-Interface that has a special contraction with some ISPs ajM groups of copyright holders. Hence, to 
make a SDMI Compliant PMs from other physical media, the iGosk-like machine follows the same 
routines as described in section 9.1 and 8.3. \ 

10. CONCLUSIOIV \ 

In this article we proposed a secure copy protection mechanism for the Intefoet based MOD Services. One 
of our proprietary modules is relevant to the use of and management of MRJT table appeared in the PD 
registration procedure. Another one is reievant to the construction of secure )S^eck-in/Check-out System 
which securely maintains the contents downioadtng /uploading between LCM anclPD. 
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